Which of the following access control approaches provides the ability to share resources or information in a peer-to-peer configuration?Group of answer choicesRole-basedDiscretionaryMandatoryNon-Discretionary
Question
Which of the following access control approaches provides the ability to share resources or information in a peer-to-peer configuration?Group of answer choicesRole-basedDiscretionaryMandatoryNon-Discretionary
Solution
The access control approach that provides the ability to share resources or information in a peer-to-peer configuration is Discretionary.
Here's why:
-
Role-based: This approach assigns permissions to specific roles in an organization. Users are then assigned to these roles. It doesn't inherently support a peer-to-peer configuration.
-
Discretionary: This approach allows the owner of the information or resource to control who can access it. This is the most flexible approach and can support a peer-to-peer configuration, as users can directly share resources with each other.
-
Mandatory: This is the most restrictive type of access control. In this approach, access is granted or denied basing on the security classification assigned to the information or resource. It doesn't support a peer-to-peer configuration.
-
Non-Discretionary: This approach is a combination of Role-based and Mandatory access control. It doesn't inherently support a peer-to-peer configuration.
Similar Questions
Question 81 ptsWhat type of access control approaches is suitable when several people in the organization perform the same role or task? Group of answer choicesLattice-based access controlDiscretionary access controlMandatory access controlRole/task-based access control
An entity that contains or receives information in the context of access control is called _________.Group of answer choicesSubjectOwnerObjectProcess
If different user groups with different security access levels need to access the same information, which of the following actions should management take?Group of answer choicesDecrease the security level of the information to ensure accessibility and usability of the information.Increase the security controls on the information.Require specific written approval each time an individual needs to access the informationDecrease the classification label on the information
________ is the ability to ensure that messages and data are only available to those authorized to view them.Group of answer choicesPrivacyIntegrityConfidentialityAvailability
Which of the following best expresses the primary goal when controlling access to assets?Group of answer choicesEnsure that all subjects are authenticated.Preserve confidentiality, integrity, and availability of systems and data.Ensure that only valid objects can authenticate on a system.Prevent unauthorized access to subjects.
Upgrade your grade with Knowee
Get personalized homework help. Review tough concepts in more detail, or go deeper into your topic by exploring other relevant questions.